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This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims: 

1. (Currendy Amended) A security protocol structure in an application layer, 
comprising: 

a secure session layer between a session layer and an application layer, wherein 
the secret secure session layer provides a data security function in the application layer , and 
includes a secured session layer security (SSLS) protocol to provide a secure session interface 
to an application program. 

wherein secure communication is established between a server and a client 
using the SSLS protocol and without using a certificate or public /private key generation 
operation . 

2. (Canceled). 

3. (Original) The protocol structure of claim 1, further comprising a network 
layer, a transport layer, a security layer, and a transaction layer. 
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4. (Original) The protocol structure of claim 3, wherein the transport layer 
comprises a wireless datagram protocol, the security layer comprises a wireless transport layer 
security, the transaction layer comprises a wireless transaction protocol, the session layer 
comprises a wireless session protocol, and the application layer comprises a wireless 
application environment. 

5. (Original) The protocol structure of claim 1, wherein a shared secret value is 
stored by a client and a server, and wherein the shared secret value is a pre-master secret. 

6. (Currently Amended) A method of establishing a security protocol structure 
in an application layer, comprising: 

receiving a first message containing a client random value from a client; 
determining whether the first message is a valid message; 
extracting a pre-master secret from the first message; 
generating a specific server random value; 

generating and transmitting a second message to the client to pass the server 
random value to the client; 

generating a master secret in accordance with the extracted pre-master secret, 
client random value, and server random value; 
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generating a key block in accordance with the master secret, client random 
value, and server random value; 

generating from the key block an encryption key value for encryption and 
decryption algorithms and Message Authentication Code (MAC) algorithms; 

generating a third message indicating that encryption is activated; and 

generating a fourth message to verify that the client has generated a client 
master secret identical to the master secre t and to indicate that secured communication has 
been established bet ween a server generating the server random value and the client. 

wherein the sec urity protocol comprises a Secured Session Layer Security 
protocol and the co mmunications protocol comprises a Wireless Application Protocol . 

7. (Original) The method of claim 6, wherein the client random value is a client 

ID. 

8. (Original) The method of claim 6, wherein the pre-master secret is a shared 
pre-master secret, and wherein the server manages the shared pre-master secret 
corresponding to the first message in a database. 
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9. (Original) The method of claim 8, wherein the first message is a user ID 
entered on a client terminal by a subscriber. 

10. (Original) The method of claim 6, wherein the fourth message is a Finished 
message, and is transmitted from a record layer. 

11. (Original) The method of claim 10, wherein the Finished message is 
transmitted using the encryption key and MAC key values, and indicates that encrypted 
communications have been established. 

12. (Original) The method of claim 6, wherein the client computes values of the 
master secret, the key block, the encryption key, and the MAC key after receiving and 
processing the second message. 

13. (Original) The method of claim 6, wherein the third message is a 
ChangeCipherSpec message. 

14. (Original) The method of claim 6, wherein the encryption key is extracted 
from the key block in such a manner that a 16 byte client MAC key, 16 byte client encryption 
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key, 8 byte client IV, 16 byte server MAC key, 16 byte server encryption key, and 8 byte 
server IV are sequentially allocated from the key block. 

15. (Original) The method of claim 6, wherein the first message and the second 
message comprise a Handshake message. 

16. (Original) The method of claim 15, wherein the Handshake message is 
formed by concatenating the first message and the second message. 

17. (Original) The method of claim 6, wherein the second message is a 
ServerHello message, the third message is a ChangeCipherSpec message, and the fourth 
message is a Finished message, and wherein the second, third, and fourth messages are 
concatenated together to be transmitted to the client. 

18. (Original) The method of claim 6, wherein the client verifies that encryption is 
activated after receiving and processing the third message. 

19. (Canceled). 
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20. (Currently Amended) The method of claim 7, wherein a subscriber inputs the 
client ID into a wireless communications device to establish secure communications with a 
server using [[a]] the Wireless Application Protocol (WAP). 



8 



